[iwar] [fc:Internet.security.threats.grow.as.hacker's.abilities.outpace.defenses]

From: Fred Cohen (fc@all.net)
Date: 2002-01-28 15:14:21


Return-Path: <sentto-279987-4393-1012259606-fc=all.net@returns.groups.yahoo.com>
Delivered-To: fc@all.net
Received: from 204.181.12.215 [204.181.12.215] by localhost with POP3 (fetchmail-5.7.4) for fc@localhost (single-drop); Mon, 28 Jan 2002 15:15:08 -0800 (PST)
Received: (qmail 7979 invoked by uid 510); 28 Jan 2002 23:13:14 -0000
Received: from n7.groups.yahoo.com (216.115.96.57) by all.net with SMTP; 28 Jan 2002 23:13:14 -0000
X-eGroups-Return: sentto-279987-4393-1012259606-fc=all.net@returns.groups.yahoo.com
Received: from [216.115.97.187] by n7.groups.yahoo.com with NNFMP; 28 Jan 2002 23:13:26 -0000
X-Sender: fc@red.all.net
X-Apparently-To: iwar@onelist.com
Received: (EGP: mail-8_0_1_3); 28 Jan 2002 23:13:26 -0000
Received: (qmail 78683 invoked from network); 28 Jan 2002 23:13:26 -0000
Received: from unknown (216.115.97.171) by m6.grp.snv.yahoo.com with QMQP; 28 Jan 2002 23:13:26 -0000
Received: from unknown (HELO red.all.net) (12.232.72.98) by mta3.grp.snv.yahoo.com with SMTP; 28 Jan 2002 23:13:25 -0000
Received: (from fc@localhost) by red.all.net (8.11.2/8.11.2) id g0SNEL212065 for iwar@onelist.com; Mon, 28 Jan 2002 15:14:21 -0800
Message-Id: <200201282314.g0SNEL212065@red.all.net>
To: iwar@onelist.com (Information Warfare Mailing List)
Organization: I'm not allowed to say
X-Mailer: don't even ask
X-Mailer: ELM [version 2.5 PL3]
From: Fred Cohen <fc@all.net>
X-Yahoo-Profile: fcallnet
Mailing-List: list iwar@yahoogroups.com; contact iwar-owner@yahoogroups.com
Delivered-To: mailing list iwar@yahoogroups.com
Precedence: bulk
List-Unsubscribe: <mailto:iwar-unsubscribe@yahoogroups.com>
Date: Mon, 28 Jan 2002 15:14:21 -0800 (PST)
Subject: [iwar] [fc:Internet.security.threats.grow.as.hacker's.abilities.outpace.defenses]
Reply-To: iwar@yahoogroups.com
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit

Internet security threats grow as hacker's abilities outpace defenses 
By Anick Jesdanun, The Associated Press, 1/27/2002
<a href="http://seattlepi.nwsource.com/business/55618_netsecure24.shtml">http://seattlepi.nwsource.com/business/55618_netsecure24.shtml>

NEW YORK -- Spending on Internet security continues to grow, yet the
worldwide supernetwork remains more vulnerable than ever to viruses,
break-ins and terrorism.

Simply put, hackers are getting smarter, and computer networks are
getting more complex and difficult to keep safe.

"The rate of growth of our vulnerabilities is exceeding the rate of
improvements in security measures," said Michael Vatis, former director
of the FBI's National Infrastructure Protection Center. "We're not
improving fast enough to keep pace with the problem, let alone get ahead
of the problem."

Bruce Schneier, chief technical officer at Counterpane Internet
Security, said companies that invest in security may be reducing their
own risks, but new networks with minimal protections are constantly
joining the Internet.

"Overall, security goes down," Schneier said. "Things are bad out there,
and things are getting worse."

CERT Coordination Center, the government-funded computer emergency
response team at Carnegie Mellon University, says it received reports
last year of 52,658 security breaches and attacks, and 2,437 computer
vulnerabilities -- more than double the figures for 2000.

Part of the increase results from greater awareness, and network
operators are reporting incidents they wouldn't have noticed in the
past, said Marty Lindner, with CERT.

But hackers have also produced better tools for automating attacks,
making them more numerous, Lindner added.

Last year, the Internet was hit with a new class of worms, which unlike
viruses do not require human intervention to spread. Code Red and Nimda
found new ways to propagate rapidly and tied up Internet traffic
worldwide by exploiting well-known software vulnerabilities.

As a result, computer security companies saw revenue growth of 15
percent to 20 percent last year, according to Chris Christiansen, a
research analyst at IDC. But that's still lower than the 30 percent to
50 percent growth experienced in past years, Christiansen said. And
although security companies said the terrorist attacks Sept. 11 prompted
more inquiries and sales, IDC found no lasting boost in revenue.

Steve Lipner, director of security assurance at Microsoft Corp., said
that although there are breaches, he said, "millions of people transact
business, send e-mail, buy things ... and so on every day, and they do
that without any ill effect at all."

Nevertheless, Lipner acknowledges the industry has work to do.

Jerry Freese, director of intelligence at security firm Vigilinx Inc.,
warned of dangers in the burgeoning world of wireless networks that
allow hackers to intercept private communications.

Home users are at risk, as they tend to be less knowledgeable about
security yet their computers are getting powerful enough for hackers to
take over and start denial-of-service strikes. Of greatest concern are
cyberattacks that could bring down electric power grids, automated
teller machines and transit systems.

------------------------ Yahoo! Groups Sponsor ---------------------~-->
Sponsored by VeriSign - The Value of Trust
Do you need to encrypt all your online transactions? Find
the perfect solution in this FREE Guide from VeriSign.
http://us.click.yahoo.com/jWSNbC/UdiDAA/yigFAA/kgFolB/TM
---------------------------------------------------------------------~->

------------------
http://all.net/ 

Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/ 



This archive was generated by hypermail 2.1.2 : 2002-12-31 02:15:03 PST